†With Hifn’s™new security
platform you can fill in the blank
HSP helps shorten your design cycles in two ways –
it’s easier and faster than doing it yourself, and you
can recycle the hardware while keeping the
software. HSP is a unique collection of hardware
and software that provide a full security reference
solution for manufacturers of IPSec and SSL
networking products. Since it presents a uniform
software interface to host computers in routers and
other high performance networking equipment, HSP
allows manufacturers to quickly benefit from
advances in microprocessor performance without
lengthy redesign work.
Protocol support, 1,000,000
SAs, scalability
In addition to supporting most
widely used VPN and e-commerce
protocols, HSP features an easily
programmable asynchronous API
(Application Program Interface) to
make it easier to integrate into your
network access products. It supports
up to one million active security
associations, and it can be scaled
transparently through the use of
multiple processors.
FIPS Certification
HSP enacts a well defined security policy that can
help achieve FIPS 140-1 Level 3 certification
Evaluation and Development Kits
Kits include two PCI reference boards, device-micro-
code, HSP software binaries that operate on the
MIPS processor running on the reference board, a
driver and API binary that runs under the Windows
NT operating system, and documentation. There is
also Host Exerciser Software (HES) that provides
multiple test packets and scenarios that can be
processed by HSP. The development kit comes with
the source code for all HSP code components.
Hifn
HSP
Security Platform
Compression
• LZS
• MPPC
Encryption
• AES
• DES
• 3DES
• ARC4*
Authentication
• SHA-1
• MD5
Public Key
• RSA, DH
• Hardware
random number
generator
Your network security
design cycle has just been
reduced by _____%†
SDRAM
General purpose & context
16-128MB
HIPP
Includes microcoded protocol
processor where applicable
6500
(optional)
Includes
Microsequencer
MIPS
CPU
133-333MHz
FLASH
(optional)
HOST
SSRAM
• HSP helps reduce development cycles because it
provides a uniform software platform that is portable
– today’s security design using HSP is easily
updated as new and more powerful processors
become available.
• Equally applicable to IPSec and SSL products.
HSP is your single platform for all security
applications, reducing your learning cycle and
design time
• Frees your CPU to do important routing and
administrative work, thereby speeding-up overall
system performance
• Supports one million security associations to take
full advantage of the hardware
• Choice of development or evaluation kits to fit your
individual design needs
• Helps you achieve FIPS 140-1 level 3 certification and
thus help insure secure physical boundaries
Features & Benefits
Supports Layer 3
and Layer 2
protocols.
IPSec (Layer 3)
RFC 2401 – IP Security
Architecture
RFC 2393 – IP Payload
Compression
RFC 2406 – IP Encryption
RFC 2402 – IP Authentication
RFC 2395 – IP
Compression/LZS
RFC 2405 – DES-CBC
Cipher Algorithm
RFC 2403 – HMAC-MD5
RFC 2404 – HMAC-SHA-1
PPP (Layer 2)
RFC 1962 – Compression
Control Protocol
RFC 1967 – PPP LZS-DCP
Compression
RFC 1974 – PPP LZS
Compression
RFC 2118 – Microsoft
Point-to-Point
Compression (MPPC)
Hifn
HSP
Security Platform
Part Number Package
HSP Evaluation Kit
HSP Development Kit
HSP Documentation:
HSP User Guide
HSP Architectural Spec
HSP Host Exerciser SW Guide
HSP Performance Apps Note
HSP Applications Download Spec
HSP Porting Guide
HSP POST Design Doc
HPS Security Policy Guide
HSP Security Design Spec
HSP Software Test Plan
HSP Theory of Operations
Please contact your Hifn
Sales Representative for
ordering information
HSP Ordering
Information
750 University Avenue
Los Gatos, CA 95032
408.399.3500 tel
408.399.3501 fax
info@hifn.com
www.hifn.com
*Algorithm completely compatible with RSA’s RC4.™
©2001 by Hi/fn, Inc. This product must be exported from the United States in accordance with the Export Administration Regulations. Diversion contrary to U.S. law prohibited.
Hifn is a trademark of Hi/fn, Inc. Hi/fn and LZS are registered trademarks of Hi/fn, Inc. All other trademarks are the property of their respective owners.
Delivered
Mode
Hifn
Products
Silicon
Silicon
Silicon
Silicon
Silicon
Silicon
Software
Software
Software
6500
7851
HIPP
7901
7902
7951
LZS-221
MPPC
HSP
Hifn Product Selection Guide
DES
3-DES SHA RSA
PCI LZS MPPC ARC4*MD5 DSA AES
nn
nnnnn
nnnnnnn
nnn nn
nnn nn
nnnnnn
n
n
nnn nnn
Memory Interface
HSP API / Driver
IPSec Handler Session Manager
PPTP Handler
IPSec Handler PPTP Handler PPTP
IPSec
HSP Module
PPP
Symmetric Key Key ManagerPublic Key
Command Queue RNG
Data Queue
Executed by
Host CPU
Executed by
HSP Module
